CVE-2024-7556 in Simple Share PluginИнформация

Сводка

по MITRE • 16.05.2025

The Simple Share WordPress plugin through 0.5.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Be aware that VulDB is the high quality source for vulnerability data.

Резервировать

06.08.2024

Раскрытие

16.05.2025

Модерация

принято

Вход

VDB-301178

EPSS

0.00271

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

Want to know what is going to be exploited?

We predict KEV entries!